GitOps’ latest release now includes “policy as Code” capabilities. This allows GitOps to automate trusted application delivery and secure infrastructure operations.
LONDON AND SAN FRANCISCO March 22, 2022–(BUSINESS WIRE)–WeaveworksGitOps announced today the General Availability for Weave GitOps2022.03. This is the top full-stack GitOps Platform to automate trusted application delivery, secure infrastructure operations, and cloud-based applications. The latest release embeds policy-as code capabilities within. Weave GitOpsIt allows applications teams to securely deploy and manage apps continuously, for faster innovation, agility and competitive advantage.
GitOps leaves Application Operations
Alexis Richardson, founder of Weaveworks, stated that the industry has gotten used to a method where configuration is checked after deployment and problems are corrected after the fact. Integrating policy as code into GitOps allows for errors and vulnerabilities to be detected before they reach production, which can save organizations significant costs. GitOps will soon be a standard for enterprises that use trusted application delivery and its declarative approach to security and compliance.
DevSecOps is integrated into the 2022.03 Weave GitOps releases. These are the features that make Trusted Application Delivery possible:
-
Continuous security and complianceIntegration of policy as source code into GitOps workflows. Configuration and security policies are stored in Gits version Control. Changes can be made, reviewed, and fed through an automated pipeline which verifies, deploys, and monitors each update and change.
-
Deployment guardrails: You can ensure the highest level compliance and governance while ensuring the fastest deployment frequency. Pre-flight checks can be automatically performed on deployments, reducing the number of steps that development teams must remember.
-
Application of custom policy:Users can decide where and how policies will be applied based on their environment, work load, geography, or any other criteria.
-
Multi-layered protection: GitOps is the code engine that protects the system during the entire software lifecycle, including code commit, deployment, and runtime. Weave GitOps allows each cluster to run its engine, ensuring that there is continuous policy evaluation in case of network disruptions.
-
Continuous compliance monitoring Any policy violation in any environment across applications and clusters will trigger an alert at the central management console.
Paul Nashawaty (Senior Analyst at Enterprise Strategy Group) stated that a growing number of enterprises using a zero-trust security system are turning to GitOps in order to make DevOps more cloud-native and IT operations. “In a similar fashion to how DevOps disrupted the infrastructure management, we believe that integrating security in GitOps automated pipes will deliver considerable agility, speed, preventing errors during CI/CD, and protecting against attacks that might shut down the entire platform.”
Weave GitOps Application Administration
Weave GitOps CoreThe free and open source extension for Firefox Flux – now includes an application observability interface. It displays the Flux system health as well as the status of GitOps-enabled workloads. Flux users who are already using Flux can easily upgrade to the UI.
The Weave GitOps release also contains numerous enhancements to improve self-service speed and application operations velocity. Customers can use the profile catalogue to identify common services that can be deployed by development teams. This could include specific databases, tools, or Kubernetes extensions. These extensions can also be used to set requirements for installation in cluster deployments. This is to ensure that standardization is being followed, such as requiring security tools to deploy in all clusters. Layered profiles enable complex deployments of entire applications stacks for self-service platform platforms.
Integration of Terraform Flux (Tech Preview)Terraform with GitOps allows you to create a full-stack environment on any cloud. A Terraform controller allows you to create a managed database for an application deployment in one GitOps workflow. Terraform controller makes Terraform modules available in GitOps. It allows you to configure resources on any cloud (AWS or Azure, Google, etc.) and other parts of the software stack, including databases, networking, security, and networking. Terraform resources are constantly reconciled so that any deviations in the runtime from the resource being deployed will be alerted.
GitOps Visual Studio Code (Tech Preview).GitOps Tools to Visual Studio Code Extension brings GitOps into Visual Studio Code. Developers have the ability to deploy workloads, update them, and check their health. It is easy to add GitOps into any Kubernetes Cluster, with special support to Azure Arc-enabled Clusters. With just a few clicks, you can create deployments then use GitOps for pushing them to your clusters. Get feedback about the preview release on the ProjectYou are most welcome.
Supporting resources
About Weaveworks
Weaveworks supports teams to adopt cloud native computing and manage cloud native infrastructure and apps quickly, reliably, at scale. The company supports infrastructure and platform teams to build and manage their Kubernetes platform in the cloud or at the edge. Its solutions and products are community-built and enterprise approved. Weaveworks is one of the top 10 contributors to Cloud Native Computing Foundation. Visit www.cloudnative.org for more information. weave.works.
Businesswire.com – View the source version https://www.businesswire.com/news/home/20220322005064/en/
Contacts
Contact PR
Jenna Dobkin, Waters Agency
[email protected]
415-652-2185